Lucene search

CVE-2023-26074

🗓️ 13 Mar 2023 13:11:15Reported by mitreType

Issue in Samsung Mobile and Baseband Modem Chipset for multiple Exynos models can lead to heap-based buffer overflow in 5G MM message codec due to insufficient parameter validation

Reporter	Title	Published	Views	Family All 5
Prion	Heap overflow	13 Mar 202313:15	–	prion
NVD	CVE-2023-26074	13 Mar 202313:15	–	nvd
Vulnrichment	CVE-2023-26074	13 Mar 202300:00	–	vulnrichment
Cvelist	CVE-2023-26074	13 Mar 202300:00	–	cvelist
GoogleProjectZero	Multiple Internet to Baseband Remote Code Execution Vulnerabilities in Exynos Modems	16 Mar 202300:00	–	googleprojectzero

Nvd

Node

samsung exynos_850_firmwareMatch-

AND

samsung exynos_850Match-

Node

samsung exynos_980_firmwareMatch-

AND

samsung exynos_980Match-

Node

samsung exynos_1080_firmwareMatch-

AND

samsung exynos_1080Match-

Node

samsung exynos_1280_firmwareMatch-

AND

samsung exynos_1280Match-

Node

samsung exynos_2200_firmwareMatch-

AND

samsung exynos_2200Match-

Node

samsung exynos_modem_5123_firmwareMatch-

AND

samsung exynos_modem_5123Match-

Node

samsung exynos_modem_5300_firmwareMatch-

AND

samsung exynos_modem_5300Match-

Node

samsung exynos_auto_t5123_firmwareMatch-

AND

samsung exynos_auto_t5123Match-

Node

samsung exynos_w920_firmwareMatch-

AND

samsung exynos_w920Match-

Source	Link
semiconductor	www.semiconductor.samsung.com/support/quality-support/product-security-updates/
googleprojectzero	www.googleprojectzero.blogspot.com/2023/03/multiple-internet-to-baseband-remote-rce.html
semiconductor	www.semiconductor.samsung.com/processor/modem/
packetstormsecurity	www.packetstormsecurity.com/files/171383/Shannon-Baseband-NrmmMsgCodec-Access-Category-Definitions-Heap-Buffer-Overflow.html
semiconductor	www.semiconductor.samsung.com/processor/mobile-processor/
bugs	www.bugs.chromium.org/p/project-zero/issues/detail
project-zero	www.project-zero.issues.chromium.org/issues/42451536

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Mar 2023 13:15Current

9.6High risk

Vulners AI Score9.6

CVSS37.6 - 9.8

EPSS0.0052

SSVC

CWE-787